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DETAILED ACTION 

1 . Claims 1-26 have been examined. 

Information Disclosure Statement PTO-1449 

2. The Information Disclosure Statement submitted by applicant on 9/30/2003 and 
1/26/2006 has been considered. Please see attached PTO-1449 form. 

Specification 

3. The specification is objected to as failing to provide proper antecedent basis for 
the claimed subject matter. See 37 CFR 1.75(d)(1) and MPEP § 608.01 (o). Correction 
of the following is required: Claims 25 and 26 are directed to a computer-readable 
medium, but the term "computer-readable medium" is not defined in the Specification. It 
is not clear what encompasses a "computer-readable medium", and what does not. 

Also, the term "unique" is used in all claims, but there is no clear and explicit definition 
of the word in the Specification. As a result, it is not clear what is considered unique, 
and what is not unique. It should be noted that an item may be considered unique in 
one context, and may not be unique in another. For example, in a Wide Area Network 
(WAN), consisting of a plurality of Local Area Networks (LAN), the address of a device 
in one LAN may be unique among the address space in that LAN, but may not be 
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unique in the WAN, because another device in another LAN may have the same 
address. 

Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

5. Claims 1 and 2 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Ueshima (US Patent No. 6,731 ,731 , filed March 29, 2001 ) and further in view of 
Schneider (U.S. Patent No. 7,050,423, filed November 27, 2001). 

5.1 . As per claim 1 , Ueshima is directed to a method of network authentication 
comprising (Ueshima teaches an authentication system, wherein a password is 
generated based on the telephone number of the device used by user, and user 
personal information. This generated password is sent to the user to be used for 
authentication): receiving a common user credential from a user seeking access to an 
information network (Col. 10 lines 7-30 shows that personal information of each proper 
user is registered in a table of the authentication system. Col. 12 line 49 to col. 13 line 
10 provides examples of user information); generating a unique credential for the user 
that comprises network specific information associated with a connection of the user 
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(Ueshima col. 3 lines 25-58 shows that a password is generated based on user 
telephone number that is used by the user to connect to the authentication system (item 
(4)). Also see col 5 lines 1-35, or col. 8 lines 14-27.); and considering the unique 
credential in connection with making an authentication decision for the user (the 
generated password is supplied to the user. The user supplies the password when 
calling from the same phone number, and will be authenticated based on the password 
and the phone number, as shown in col. 3 lines 25-58, item (6). Also see Example 3 for 
an operation procedure. 

Ueshima teaches generating a password, supplying the password to a user, receiving 
the password from the user when the user wants to authenticate for a service access, 
and authenticating the user by verifying the submitted password. The password is 
generated in association with the user phone number (connection), however, Ueshima 
does not explicitly teach including the phone number as part of a credential. 

Schneider teaches a system for supporting multiple network services, wherein requests 
for services are associated with the issuance of a certificate (credential) for the 
requesting user (see Abstract). The certificate comprises information relating to the 
permitted setup, and service policy or logic representing service capabilities or service 
permissions, associated with the network service, and a unique setup identifier (see, for 
example, claim 1). 
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Ueshima and Schneider are analogous art as they are both directed to user 
authentication procedures as part of a network service system. At the time of invention, 
it would have been obvious to the one skilled in art to enhance Ueshima's system to use 
a certificate (credential), including a password, and additional fields of information, as 
taught by Schneider's certificate. As Ueshima bases the generation of the password on 
verifying the phone number used by the user, it would have been obvious to include the 
phone number as part of the certificate. The motivation to do so would have been to 
provide a more comprehensive set of authentication parameters and information 
relating to the permitted connection setup, by using a certificate including all said 
information, rather than a password alone. Note also that Ueshima's system performs 
authentication in two steps (see col. 9 lines 35-50), where both the phone number and 
the generated password are used for authentication. Therefore, an improvement to 
include several pieces of information in one credential containing several fields, as one 
suggested by Schneider, is well placed. 

5.2. As per claim 2, Ueshima in view of Schneider is directed to the method of claim 
1 , further comprising: receiving the common user credential from a different user 
seeking access to the information network; generating a different unique credential for 
the different user that comprises different network specific information; and considering 
the different unique credential in connection with making an authentication decision for 
the different user (As shown in Ueshima col. 10 lines 6-15, the database stores 
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personal information for each proper user. Also, as shown in col. 3 lines 20-23, 
individual users are authenticated separately). 

6. Claims 3-26 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Ueshima (US Patent No. 6,731 ,731 , filed March 29, 2001 ) and further in view of 
Schneider (U.S. Patent No. 7,050,423, filed November 27, 2001), and further in view of 
Examiner Official Notice. 

6.1 . As per claim 3, Ueshima in view of Schneider is directed to the method of claim 
1 . Examiner take the Official Notice that xDSL was known as a transmission technique 
using telephone lines. Therefore, it would have been obvious to replace the specifics of 
a conventional phone line (phone number), with the specifics of xDSL links. The 
motivation to do so would be to expand the range of service availability, and 
authentication as taught by the combination of Ueshima and Scneider, and allow user 
access to the same services if the user uses xDSL connection instead of a conventional 
phone line. Therefore, Ueshima in view of Schneider and further in view of the Official 
Notice is directed to claim 1 , wherein the connection of the user comprises an xDSL 
link. 

6.2. As per claim 4, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1, wherein the connection of the user 
comprises a link at least partially supported by a cable modem (See rejection of claim 3, 
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and note that cable transmission systems were also known in the art at the time of 
invention). 

6.3. As per claim 5, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1 , further comprising utilizing a network 
node to generate the unique credential (Ueshima col. 3 lines 38-41 , indicating that the 
CTI server or another device generates the password). 

6.4. As per claim 6, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1 , wherein the network specific 
information comprises a unique circuit identification number associated with an ADSL 
connection (see rejection of claim 3, and note that ADSL was known at the time of 
invention, and is a type of xDSL). 

6.5. As per claim 7, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1 , wherein the network specific 
information comprises a virtual circuit identification associated with ADSL routing (see 
response to claims 3 and 6. Note that the virtual circuit identification is equivalent to a 
phone number). 

6.6. As per claim 8, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1 , further comprising tracking a metric 
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associated with the user (As shown in Schneider claim 1 , information relating to the 
permitted setup, and service policy or logic representing service capabilities or service 
permissions are part of the certificate. Therefore Schneider keeps track of that 
information, which relates to user access control). 

6.7. As per claim 9, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 8, wherein the metric is selected from 
the group consisting of an access control metric, a payment metric, and a security 
metric (see rejection of claim 8, where it is shown that an access control metric is 
tracked). 

6.8. As per claim 1 0, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1, further comprising utilizing a network 
node to generate the unique credential, wherein the network node comprises an 
authentication server and an interface operable to receive the common user credential 
(Ueshima col. 3 lines 38-41 , indicating that the CTI server or another device generates 
the password. The CTI server authenticates the user, and therefore, it is an 
authentication server. Also, the authentication server receives user credentials for 
purpose of authentication, therefore, it must have an interface to receive the 
information). 
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6.9. As per claim 1 1 , Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1, further comprising: determining that 
the user does not have access rights to the information network; and initiating 
communication of a deny response (Ueshima col. 13 lines 40 to 45). 

6.10. As per claim 1 2, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1 , wherein the network specific 
information comprises network generated information that is unique to a connection in 
use by the user (the password is generated in accordance with the phone number of the 
user. The phone number of the user that is used for connection is unique). 

6.11. As per claim 1 3, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the method of claim 1 , wherein the network specific 
information comprises information that is unique to a physical location of the user 
(Ueshima teaches registering the address of the user (col. 13 line 9-11). Therefore it 
would have been obvious to include user address in the certificate. The motivation 
would be to improve the security by using additional verification parameters). 

6.12. As per claim 14, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to an authentication system, comprising: an interface operable 
to receive an authentication request (Fig. 1 and associated text, as it is the platform for 
performing operations described in rejection of claims 1-13), item 30 has several 
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interfaces to receive an authentication request) from a PPPoE client of a given user (as 
discussed in rejection of claims 3, 4, and 7, it would have been obvious to the one 
skilled in art to replace networks specifics of a conventional phone system, with 
specifics of other types of networks, such as cable, Internet, Ethernet or Point to Point 
Protocol over Ethernet (PPPoE)); a customizing engine communicatively coupled to the 
interface and operable to add a unique identifier for the given user to the authentication 
request (Fig. 1 item 30. Note that it adds the password received from Password 
Generation unit 41 , as described by combination of Ueshima in view of Schneider, and 
further in view of Examiner Official Notice outlined in claims 1-13); and an output device 
communicatively coupled to the customizing engine and operable to output the unique 
identifier to an access engine for authentication of the given user (item 30 has output 
devices for outputting the password to the Authentication System Unit). 

6.13. As per claim 1 5, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 14, further comprising a network node 
that comprises the interface, the customizing engine, and the output device (item 30 is a 
network node, as it is connected to Network 150). 

6.14. As per claim 16, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 14, further comprising the access 
engine, wherein the access engine is communicatively coupled to a repository 
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comprising acceptable credentials, further wherein the access engine is operable to 
compare the unique identifier against the acceptable credentials as a part of granting 
access rights to the given user (Ueshima Fig. 1 item 60 and associated text, where it 
receives the data from a database). 

6.15. As per claim 1 7, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 14, wherein the authentication request 
from the PPPoE client comprises an included identifier, further wherein the customizing 
engine is further operable to remove included identifier prior to an outputting of the 
authentication request to the access engine (As shown above, Ueshima teaches 
registering additional user information such as address, date of birth, etc. (see col. 13 
lines 1-15) on the need of the service. Therefore, it would be obvious to submit such 
identifiers, as part of authentication request. Ueshima also teaches that in the second 
step of authentication, a password is submitted. Therefore, it would have been obvious 
to remove the identifiers used in the initial step of authentication, from the request in the 
second step of authentication. The motivation would be to prevent disclosure of plurality 
of user sensitive information, if the certificate is discovered by a malicious user. The 
certificate contains the parameters required for second step of authentication, and 
excludes the ones not necessary. 

6.16. As per claim 1 8, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 14, wherein the authentication request 
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from the PPPoE client comprises an included identifier that does not uniquely identify 
the given user (see response to claim 17, and note that, for example, the address does 
not identify the user uniquely). 

6.17. As per claim 19, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 14, further comprising a piece of 
customer premises equipment comprising a broadband modem, the broadband modem 
operable to output the authentication request to the interface (as mentioned above, use 
of different types of network systems, which were well-known and broadly used at the 
time of invention, in combination of other networks would have been obvious to the one 
skilled in art. Examiner takes the Official Notice that broadband modems were well- 
known and widely used at the time of invention). 

6.18. As per claim 20, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 19, further comprising a service 
provider network node that comprises the interface, the customizing engine, and the 
output device (item 30 of Fig. 1 of Ueshima includes all the required items, as discussed 
in claim 14). 

6.19. As per claim 21 , Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 20, further comprising: a 
communication path operable to form at least a part of an interconnection between the 
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broadband modem and the Public Internet (connection of a broadband modem to 
internet was well-known in the art, and therefore it would have been obvious to use the 
combination of Ueshima in view of Schneider, and further in view of Examiner Official 
Notice in conjunction with a network consisting a broadband modem connected to 
internet. Note that said connection makes a communication path); and the access 
engine, wherein the access engine is communicatively coupled to a repository 
comprising acceptable credentials, further wherein the access engine is operable to 
compare the unique identifier against the acceptable credentials as a part of granting 
the given user an access right to the communication path (These requirements were 
discussed in rejection of claims 1-20 above). 

6.20. As per claim 22, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 21 , wherein the unique identifier 
comprises a unique circuit identification number associated with an ADSL connection 
(see rejection of claim 6). 

6.21 . As per claim 23, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 21, wherein the unique identifier 
comprises network generated information that is unique to a connection in use by the 
given user (the telephone number is unique). 
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6.22. As per claim 24, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the system of claim 23, wherein the unique identifier does 
not uniquely identify the piece of customer premises equipment or the broadband 
modem (the password is generated based on the phone number of the circuit id, and 
does not uniquely identify the piece of customer premises equipment). 

6.23. The requirements of claim 25 are substantially the same as claims 1 -1 4 above. 
Note that sending a response to the user to notify them that the authentication had been 
successful, and the user is permitted to use the services was well-known and widely 
practiced at the time of invention. Therefore, sending the permit response upon 
acceptance of credentials would have been obvious to the one skilled in the art. 

6.24. As per claim 26, Ueshima in view of Schneider, and further in view of Examiner 
Official Notice is directed to the computer-readable medium of claim 25, wherein the 
credential comprises a commonly assigned credential that does not uniquely identify a 
requestor (the password is generated based on the phone number of the circuit id, and 
does not uniquely identify the requestor). 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Farid Homayounmehr whose telephone number is 571 
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272 3739. The examiner can normally be reached on 9 hrs Mon-Fri, off Monday 
biweekly. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kristine Kincaid can be reached on (571) 272-4063. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.gov. Should you 
have questions on access to the Private PAIR system, contact the Electronic Business 
Center (EBC) at 866-217-9197 (toll-free). 



/Farid Homayounmehr/ 

Examiner 

Art Unit: 2139 

/Kristine Kincaid/ 

Supervisory Patent Examiner, Art Unit 2139 
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